CVE-2024-45491 | libexpat up to 2.6.2 on 32-bit xmlparse.c nDefaultAtts UINT_MAX integer overflow (ID 888)

Posted by Angelo Barbosa | Aug 30, 2024 | CVE

A vulnerability was found in libexpat up to 2.6.2 on 32-bit. It has been rated as problematic. Affected by this issue is the function nDefaultAtts of the file xmlparse.c. The manipulation of the argument UINT_MAX leads to integer overflow.

This vulnerability is handled as CVE-2024-45491. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45491 | libexpat up to 2.6.2 on 32-bit xmlparse.c nDefaultAtts UINT_MAX integer overflow (ID 888)

Related Posts

CVE-2024-8710 | code-projects Inventory Management 1.0 Products Table Page /model/viewProduct.php id sql injection

CVE-2024-41093 | Linux Kernel up to 5.15.161/6.1.96/6.6.36/6.9.7 AMD GPU drm_gem_fb_get_obj buffer overflow

CVE-2024-32560 | Sharabindu QR Code Composer Plugin up to 2.0.3 on WordPress cross site scripting

CVE-2024-32467 | MeterSphere up to 2.10.13-lts access control (GHSA-7499-q88f-mxqp)